📦 Nginx

This vulnerability is a buffer overflow in NGINX's autoindex module when processing file modification dates with years exceeding four digits. It affects NGINX servers with autoindex enabled, allowing ...

CVE-2023-44487 is an HTTP/2 protocol vulnerability that allows attackers to cause denial of service by rapidly resetting streams, consuming server resources. This affects any system using HTTP/2, incl...

ALPACA is a TLS protocol confusion attack that allows man-in-the-middle attackers to redirect traffic between different services sharing compatible certificates (like wildcard or multi-domain certific...

This CVE describes a client certificate authentication bypass vulnerability in nginx when multiple server blocks share the same IP/port. Attackers can exploit TLS session resumption to bypass client c...